jecasc - 7:32 am on Oct 2, 2008 (gmt 0)

I simply randomize the input field names and store them in sessions.

For example:

$_SESSION['comment'] = sha1(uniqid (rand()));
echo '<input type="text" name="'.$_SESSION['comment'].'">';

and then retrieve them like this: $comment= $_POST[$_SESSION['comment']];

Since this technique is not very often used by others it works for me. Of course it only works against bots and not human spammers. All in all, I prefer individual ways to combat spam bots, since nobody will develop a bot solution just for my website. Off the shelf solutions on the other hand are always a target for spammers since they are widely used.